Deploying Falco
We have included a script to deploy Falco, called install-falco.sh, in the GitHub repository in the chapter10 folder.
The two most popular methods of deploying Falco to a Kubernetes cluster are using the official Helm chart or a DaemonSet manifest from the Falco repo. For the purposes of this module, we will deploy Falco using Helm and a custom values.yaml from the book's GitHub repository.
To deploy Falco using the included script, execute the script from within the chapter10 folder by executing ./install-falco.sh.
The steps that the script performs are detailed in the following list and will be explained in additional detail in this section.
The script executes the following tasks:
- Creates the Falco namespace
- Adds the charts from the
falcosecurity.github.io/chartsrepository - Installs Falco using Helm in the falco namespace using the custom values file along with the custom rules file for our NGINX example
Falco...
